Job Information
WSP USA Attack Surface Reduction Analyst (Global) in Panama
Attack Surface Reduction A nalyst
WSP is a global consulting firm assisting public and private clients to plan, develop, design, construct, operate and maintain thousands of critical infrastructure projects around the world.
Position Summary
The Attack Surface Reduction Analyst will play a critical role in enhancing our organization’s cybersecurity posture by identifying, assessing, and mitigating vulnerabilities and threats across our digital environment. This role involves a combination of strategic analysis, hands-on implementation, and collaboration with various teams to reduce our attack surface and improve our overall security resilience.
A day in the life
Specific areas of responsibility may fall into any one of the following areas of Attack Surface Reduction :
Vulnerability Assessment: Conduct thorough assessments to identify potential vulnerabilities and weaknesses in our systems, applications, and networks.
Attack Surface Analysis: Analyze and map out the organization’s attack surface, including endpoints, network components, applications, and cloud environments, to identify areas of risk.
Mitigation Strategies: Develop and implement strategies and controls to reduce attack vectors and minimize potential entry points for malicious activities.
Risk Evaluation: Continuously evaluate emerging threats and vulnerabilities and assess their impact on our attack surface.
Incident Response Support: Collaborate with the Incident Response team to address and resolve security incidents related to identified vulnerabilities or attack vectors.
Collaboration: Work closely with I&O, Risk, SOC, SecDevOps, and other relevant teams to integrate security practices into the development and deployment processes.
Security Tools: Utilize and configure security tools and technologies for vulnerability scanning, threat intelligence, and attack surface monitoring.
Documentation & Reporting: Maintain detailed documentation of vulnerabilities, risk assessments, and mitigation actions. Prepare and present reports to stakeholders on security posture and risk status.
Continuous Improvement: Stay current with industry trends, threat intelligence, and emerging technologies to continually enhance our attack surface reduction strategies.
Leadership and People Responsibilities
Develop positive working relationships with other team members and business partners and partners across teams to align with WSPs internal and external client demands.
Provide feedback on the governance process for continued improvement.
* *
Finance/Budgetary Responsibilities
Provide feedback on tooling and identifyadditional needs
Plan for expanse of security tools to cover ongoing needs
Evaluation of license usage and potential growth
What you’ll bring to WSP
Required
7- years related experience in Security Operations, Network Security, Vuln. Management or similar position.
Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering,DataSciences, or related field
Strong knowledge of security assessment tools, vulnerability scanning, and penetration testing
Proficiency in security tools: Microsoft Defender, Microsoft Defender EASM, BitSight, Cybel Angel and others.
Strong analytical skills with a keen eye for detail and accuracy
Effective communication skills, with the ability to clearly convey technical concepts to both technical and non-technical stakeholders
Experience with IT Governance frameworks such as COBIT, ITIL,NISTand ISO 2700x
Experience with risk management, including risk analysis, mitigation, and monitoring
* *
What sets you apart
Master’s degree in information technology, Computer Science, Engineering,Data Sciencesor related field
Security , CISSP, or other related certifications.
Title: Attack Surface Reduction Analyst (Global)
Location: Colombia
Other Locations: Chile, Brazil, Mexico, Panama, Argentina, Trinidad and Tobago, Peru
Requisition ID: 24001295
WSP USA
- WSP USA Jobs